Sy460129

**Name of the Vulnerable Software and Affected Versions** Stirling-PDF versions prior to 2.5.2 **Description** Stirling-PDF is a locally hosted web application used for PDF file operations. Versions prior to 2.5.2 have an issue where the `/api/v1/convert/markdown/pdf` endpoint does not properly validate paths when extracting entries from user-supplied ZIP files. This allows an authenticated user to write files outside the intended temporary directory, resulting in arbitrary file write with the privileges of the `stirlingpdfuser` process. This can lead to overwriting writable files and compromising data integrity. The vulnerable parameter is the ZIP file provided to the `/api/v1/convert/markdown/pdf` endpoint. **Recommendations** Update Stirling-PDF to version 2.5.2 or later.

**Name of the Vulnerable Software and Affected Versions** ClipBucket versions prior to 5.5.3 #59 **Description** ClipBucket is an open source video sharing platform. A normal authenticated user can store a cross-site scripting (XSS) payload, which is then triggered by an administrator. **Recommendations** Update to version 5.5.3 #59 or later.

**Name of the Vulnerable Software and Affected Versions** ClipBucket versions prior to 5.5.3 **Description** ClipBucket is an open source video sharing platform. Prior to version 5.5.3 #59, collection item operations are susceptible to authorization flaws. Authenticated users can modify collection items belonging to other users. This is due to missing authorization checks when adding items via the `/actions/add to collection.php` endpoint and a broken ownership check in the `removeItemFromCollection()` function during item deletion via the `/manage collections.php?mode=manage items...` endpoint. Attackers can insert and remove items from collections they do not own. **Recommendations** Update to version 5.5.3 #59 or later.

**Name of the Vulnerable Software and Affected Versions** iccDEV versions prior to 2.3.1.5 **Description** iccDEV is a set of libraries and tools for working with ICC color management profiles. A signed integer overflow in the `iccFromCube.cpp` file during multiplication can lead to undefined behavior, potentially causing crashes or incorrect ICC profile generation when processing specially crafted or large cube inputs. The issue is addressed by commit 43ae18dd69fc70190d3632a18a3af2f3da1e052a. **Recommendations** Update to a version later than 2.3.1.4.

**Name of the Vulnerable Software and Affected Versions** tcpreplay version 4.5.1 **Description** A heap-buffer-overflow issue exists in the tcpliveplay utility. This occurs when processing a crafted pcap file, specifically within the checksum calculation logic at the `do checksum math liveplay` function in `tcpliveplay.c`. This can lead to a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.